883 matches found
SUSE-SU-2017:1058-1 Security update for xen
This update for xen fixes the following security issues: - CVE-2017-7228: Broken check in memoryexchange permited PV guest breakout bsc1030442. - CVE-2017-6414: Memory leak in the vcardapdunew function in card7816.c in libcacard allowed local guest OS users to cause a denial of service host memor...
Xen - Broken Check in memory_exchange() Permits PV Guest Breakout
Xen - Broken Check in memoryexchange Permits PV Guest Breakout Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1184 This bug report describes a vulnerability in memoryexchange that permits PV guest kernels to write to an arbitrary virtual address with hypervisor privileges. The...
Fedora 25 : xen (2017-054729ab08)
Qemu: 9pfs: host memory leakage via v9fscreate CVE-2017-7377 1437873 x86: broken check in memoryexchange permits PV guest breakout XSA-212, CVE-2017-7228 1438804 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenabl...
FreeBSD : xen-kernel -- broken check in memory_exchange() permits PV guest breakout (90becf7c-1acf-11e7-970f-002590263bf5)
The Xen Project reports : The XSA-29 fix introduced an insufficient check on XENMEMexchange input, allowing the caller to drive hypervisor memory accesses outside of the guest provided input/output arrays. A malicious or buggy 64-bit PV guest may be able to access all of system memory, allowing f...
[SECURITY] [DSA 3707-1] openjdk-7 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3707-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff November 07, 2016 https://www.debian.org/security/faq -...
PT-2021-3569 · Runc +8 · Runc +8
Name of the Vulnerable Software and Affected Versions: runc versions prior to 1.0.0-rc95 Description: The issue allows a container filesystem breakout via directory traversal. To exploit this, an attacker must be able to create multiple containers with a fairly specific mount configuration. The...
Debian DLA-346-1 : openjdk-6 security update
Several vulnerabilities have been discovered in OpenJDK, an implementation of the Oracle Java platform. These vulnerabilities relate to execution of arbitrary code, breakouts of the Java sandbox, information disclosure and denial of service. For Debian 6 'Squeeze', these problems have been fixed ...
[SECURITY] [DLA 346-1] openjdk-6 security update
Package : openjdk-6 Version : 6b37-1.13.9-1deb6u1 CVE ID : CVE-2015-4734 CVE-2015-4803 CVE-2015-4805 CVE-2015-4806 CVE-2015-4835 CVE-2015-4842 CVE-2015-4843 CVE-2015-4844 CVE-2015-4860 CVE-2015-4872 CVE-2015-4881 CVE-2015-4882 CVE-2015-4883 CVE-2015-4893 CVE-2015-4903 CVE-2015-4911 Several...
[SECURITY] [DSA 3381-2] openjdk-7 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3381-2 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff November 1, 2015 https://www.debian.org/security/faq -...
openSUSE Security Update : the Linux Kernel (openSUSE-2015-686)
The openSUSE 13.2 kernel was updated to receive various security and bugfixes. Following security bugs were fixed : - CVE-2015-3290: arch/x86/entry/entry64.S in the Linux kernel on the x8664 platform improperly relied on espfix64 during nested NMI processing, which allowed local users to gain...
DSA-3381-1 openjdk-7 - security update
Bulletin has no description...
Amazon Linux: Security Advisory (ALAS-2015-522)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
DSA-3316-1 openjdk-7 - security update
Bulletin has no description...
Design/Logic Flaw
Libcontainer 1.6.0, as used in Docker Engine, allows local users to escape containerization "mount namespace breakout" and write to arbitrary file on the host system via a symlink attack in an image when respawning a container...
CVE-2015-3629
Libcontainer 1.6.0, as used in Docker Engine, allows local users to escape containerization "mount namespace breakout" and write to arbitrary file on the host system via a symlink attack in an image when respawning a container...
CVE-2015-3629
Libcontainer 1.6.0, as used in Docker Engine, allows local users to escape containerization "mount namespace breakout" and write to arbitrary file on the host system via a symlink attack in an image when respawning a container...
Amazon Linux AMI : docker (ALAS-2015-522)
The file-descriptor passed by libcontainer to the pid-1 process of a container has been found to be opened prior to performing the chroot, allowing insecure open and symlink traversal. This allows malicious container images to trigger a local privilege escalation. CVE-2015-3627 Libcontainer versi...
DSA-3234-1 openjdk-6 - security update
Bulletin has no description...
Debian DLA-96-1 : openjdk-6 security update
Several vulnerabilities have been discovered in OpenJDK, an implementation of the Oracle Java platform, resulting in the execution of arbitrary code, breakouts of the Java sandbox, information disclosure or denial of service. For Debian 6 'Squeeze', these problems have been fixed in version...
Debian Security Advisory DSA 2980-1 (openjdk-6 - security update)
Several vulnerabilities have been discovered in OpenJDK, an implementation of the Oracle Java platform, resulting in the execution of arbitrary code, breakouts of the Java sandbox, information disclosure or denial of service. OpenVAS Vulnerability Test $Id: deb2980.nasl 6663 2017-07-11 09:58:05Z...